Digital Identity Management Systems

Abstract

The goal of this thesis is a review of existing systems and technologies for managing digital identities. After the selection of the two most promising systems there will be a detailed comparison for a typical environment. In the first part of my thesis, the theory for understanding issues of identity management is introduced. Furthermore, the difference between identity and digital identity is explained and identity management itself is interpreted. An example of identity management solution outlines all the relevant concepts, components and technologies that make up this area. Special attention was made on the user provisioning segment, where a generic architecture model presents all the components of these systems. In the second part of the thesis, I highlight examples of aspects in IDM systems that reduce costs for IT, further benefits to end-users and how the result of applying them improves safety at the entire organization level. I discuss the difference between Identity and Access Management Suites and Point Identity and Access Management products. In the second part, I have identified leading vendors of Identity Management Suites, as well as User provisioning systems, the latter with a brief presentation. The third part of the thesis begins with a description of the evolution, characteristics, architecture and environments supported by the systems Oracle Identity Manager and Microsoft Identity Lifecycle Manager. Here I define a problem domain, which is a typical real world administrator problem. Then, based on the implementation scenario of the problem domain, the above-mentioned systems for User provisioning are compared. In this, way I gained practical experience in both systems. I described the necessary steps for the realization of my scenario, explain the configuration and highlighted the experience I have gained in doing so. Finally I came to the conclusion, that Oracle is confirming its status as the leading vendor in the User provisioning field.